Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for wireless access authentication, comprises: receiving, by an intelligent gateway, an access authentication packet comprising an authentication identification indicating a terminal device which is to access a wireless local area network (WLAN) managed by the intelligent gateway, the access authentication packet is from the terminal device or a relay device previously registered on the intelligent gateway and wherein, in the case that the access authentication packet is from the relay device previously registered on the intelligent gateway, a preset field in the access authentication packet comprises an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway via the relay device; constructing, by the intelligent gateway, an identity verification packet comprising an access authentication identification and an association account identification, wherein, the access authentication identification represents the authentication identification of the terminal device carried in the access authentication packet, and the association account identification indicates an account registered on the intelligent gateway; transmitting, by the intelligent gateway, the identity verification packet to a cloud server, wherein, the cloud server saves account information of one or more trusted accounts; permitting, by the intelligent gateway, a terminal device corresponding to access authentication identification carried in a verification success packet received from the cloud server to access the WLAN, wherein the verification success packet is returned by the cloud server according to the saved account information of the one or more trusted accounts in response to receipt of the identity verification packet, wherein permitting the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN, comprises: feeding back, by the intelligent gateway, the verification success packet to the relay device, so that the relay device permits the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN managed by the intelligent gateway via the relay device.
This invention relates to wireless access authentication in a wireless local area network (WLAN) managed by an intelligent gateway. The problem addressed is secure and efficient authentication of terminal devices, including those connecting through relay devices, to ensure only authorized devices gain access to the network. The method involves an intelligent gateway receiving an access authentication packet from either a terminal device or a previously registered relay device. If the packet comes from the relay device, it includes a preset field with an authentication identification for the terminal device seeking access. The gateway constructs an identity verification packet containing an access authentication identification (from the terminal device) and an association account identification (indicating an account registered on the gateway). This packet is transmitted to a cloud server, which stores account information for trusted accounts. The cloud server verifies the identity and, if successful, returns a verification success packet. Upon receiving this, the gateway permits the terminal device to access the WLAN. If the terminal device is connecting via a relay device, the gateway forwards the verification success packet to the relay device, which then grants access to the terminal device. This approach ensures secure authentication by leveraging cloud-based account verification, supporting both direct and relayed connections to the WLAN.
2. The method according to claim 1 , further comprises: acquiring, by the intelligent gateway, account information of an account registered on the intelligent gateway; transmitting, by the intelligent gateway, the account information to the cloud server, so as for the cloud server to determine the account registered on the intelligent gateway as a trusted account and establish correspondence between the account information of the trusted account and the intelligent gateway.
This invention relates to a system for securely managing accounts in an intelligent gateway environment, addressing the need for trusted account verification and seamless integration between intelligent gateways and cloud servers. The method involves an intelligent gateway acquiring account information of a user account registered on the system. The gateway then transmits this account information to a cloud server, which processes the data to designate the account as a trusted account. The cloud server establishes a direct correspondence between the account information and the intelligent gateway, ensuring secure and authenticated access. This process enhances security by verifying account legitimacy and enables efficient communication between the gateway and cloud server. The system ensures that only trusted accounts can interact with the gateway, reducing unauthorized access risks. The method supports dynamic account management, allowing the cloud server to update and maintain accurate records of trusted accounts linked to specific gateways. This approach improves system reliability and user trust by ensuring that only verified accounts can establish connections, while also simplifying account verification procedures. The invention is particularly useful in smart home or IoT environments where secure account management is critical.
3. The method according to claim 2 , further comprises: acquiring, by the intelligent gateway, a security code returned by the cloud server in response to receipt of the account information; the identity verification packet further comprises the security code.
This invention relates to secure identity verification systems, particularly for authenticating users in cloud-based environments. The problem addressed is ensuring secure and reliable identity verification when accessing cloud services, preventing unauthorized access while maintaining user convenience. The method involves an intelligent gateway that facilitates secure communication between a user device and a cloud server. The gateway receives account information from the user device and forwards it to the cloud server. The cloud server processes this information and returns a security code, which the gateway then acquires. This security code is incorporated into an identity verification packet, which is used to authenticate the user's identity. The identity verification packet may also include other verification data, such as biometric information or device identifiers, to enhance security. The intelligent gateway acts as an intermediary, ensuring that sensitive account information is securely transmitted and that the verification process is streamlined. By integrating the security code into the identity verification packet, the system provides an additional layer of authentication, reducing the risk of unauthorized access. This method is particularly useful in environments where multiple devices or users need to be verified before accessing cloud-based resources.
4. The method according to claim 1 , wherein, before constructing the identity verification packet, the method further comprises: determining, by the intelligent gateway, whether the access authentication packet includes a preset field; extracting, by the intelligent gateway, the content in the preset field as the authentication identification of the terminal device if the access authentication packet includes the preset field; determining, by the intelligent gateway, a source Media Access Control (MAC) address of the access authentication packet as the authentication identification of the terminal device if the access authentication packet does not include the preset field.
This invention relates to network authentication systems, specifically methods for verifying terminal device identities in network access scenarios. The problem addressed is the need for flexible and reliable authentication identification extraction from access authentication packets, particularly when packets may lack standardized fields. The method involves an intelligent gateway processing access authentication packets to determine a terminal device's authentication identification. Before constructing an identity verification packet, the gateway first checks if the access authentication packet contains a preset field. If present, the gateway extracts the content of this field as the terminal device's authentication identification. If the preset field is absent, the gateway defaults to using the source MAC address of the access authentication packet as the authentication identification. This approach ensures compatibility with various packet formats while maintaining reliable device identification. The solution provides adaptability for different network environments by dynamically selecting the most appropriate identification method based on packet structure. This is particularly useful in scenarios where authentication packets may originate from diverse devices or networks with inconsistent field implementations. The method enhances security and interoperability by ensuring consistent identification regardless of packet format variations.
5. The method according to claim 1 , wherein the intelligent gateway connects to the terminal device via one of a Wireless-Fidelity (WIFI), ZigBee or Bluetooth protocol.
This invention relates to an intelligent gateway system for managing communication between terminal devices and a network. The system addresses the challenge of efficiently connecting diverse terminal devices, which may use different communication protocols, to a centralized network for data exchange and control. The intelligent gateway acts as an intermediary, facilitating seamless communication between the terminal devices and the network, regardless of the protocol used by the devices. The gateway is designed to support multiple wireless communication protocols, including Wireless-Fidelity (Wi-Fi), ZigBee, and Bluetooth. This flexibility allows it to connect to a wide range of terminal devices, such as sensors, smart home appliances, or industrial equipment, that may operate on different wireless standards. By supporting these protocols, the gateway ensures compatibility and interoperability across heterogeneous device ecosystems. The system enables the gateway to dynamically select the most appropriate communication protocol based on factors such as signal strength, data rate requirements, or power consumption constraints. This adaptability optimizes performance and efficiency in various environments, from smart homes to industrial automation. Additionally, the gateway may handle protocol translation, ensuring that data transmitted between the terminal devices and the network is correctly interpreted and processed. Overall, the invention provides a versatile solution for integrating diverse terminal devices into a unified network, enhancing connectivity and functionality in smart environments.
6. The method according to claim 1 , wherein the terminal device connects to the intelligent gateway via a non Wi-Fi protocol.
This invention relates to a method for connecting a terminal device to an intelligent gateway using a non-Wi-Fi protocol. The intelligent gateway acts as an intermediary between the terminal device and a cloud server, facilitating data exchange and communication. The terminal device, which may be a sensor, actuator, or other IoT device, transmits data to the gateway, which then forwards it to the cloud server for processing. The cloud server may also send commands or data back to the terminal device via the gateway. The non-Wi-Fi protocol used for the connection between the terminal device and the gateway may include protocols such as Bluetooth, Zigbee, Z-Wave, or other low-power, short-range wireless communication standards. This method ensures reliable and efficient communication in environments where Wi-Fi may not be available or suitable, such as in industrial settings, smart homes, or remote monitoring applications. The use of a non-Wi-Fi protocol reduces power consumption, improves latency, and enhances compatibility with a wide range of IoT devices. The gateway may also perform local processing or data aggregation before transmitting information to the cloud, optimizing bandwidth and reducing cloud server load. This approach enables seamless integration of diverse IoT devices into a unified network, improving scalability and interoperability.
7. The method according to claim 1 , wherein the relay device has previously registered on the intelligent gateway as part of an account registration.
A method for managing device registration in a networked system involves a relay device that has previously registered with an intelligent gateway as part of an account registration process. The relay device acts as an intermediary between other devices and the gateway, facilitating communication and data exchange. The registration process ensures that the relay device is authenticated and authorized to interact with the gateway, enabling secure and efficient network operations. This method enhances system security by verifying the identity of the relay device before allowing it to participate in network activities. The registration step may include providing credentials, device identifiers, or other authentication data to the gateway, which stores this information for future verification. The relay device may also be configured to manage connections for other devices, ensuring they comply with network policies and security protocols. This approach improves network reliability and reduces unauthorized access risks. The method is particularly useful in IoT (Internet of Things) environments where multiple devices need to communicate securely through a centralized gateway. By pre-registering the relay device, the system ensures that only trusted devices can relay data, maintaining the integrity of the network.
8. A method for wireless access authentication, comprises: receiving, by a cloud server, an identity verification packet transmitted by an intelligent gateway, wherein, the identity verification packet comprises an access authentication identification and an association account identification, the access authentication identification represents an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway, and the association account identification indicates an account registered on the intelligent gateway, wherein the identify verification packet is from the terminal device or a relay device previously registered on the intelligent gateway and wherein, in the case that the access authentication packet is from the relay device previously registered on the intelligent gateway, a preset field in the access authentication packet comprises an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway via the relay device; determining, by the cloud server, whether the access authentication identification exists in trusted terminal device information of a pre-saved trusted account according to the association account identification; and returning, by the cloud server, a verification success packet carried with the access authentication identification to the intelligent gateway if the access authentication identification exists in the trusted terminal device information, wherein the verification success packet indicates to the intelligent gateway to permit the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN and the verification success packet indicates to the relay device to permit the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN managed by the intelligent gateway via the relay device.
This invention relates to wireless access authentication for WLAN (Wireless Local Area Network) systems, specifically addressing secure and efficient authentication of terminal devices seeking network access. The system involves a cloud server, an intelligent gateway managing the WLAN, and terminal devices or relay devices that may act as intermediaries for authentication. The method begins with the cloud server receiving an identity verification packet from the intelligent gateway, which includes an access authentication identification (representing the terminal device requesting access) and an association account identification (indicating an account registered on the gateway). The packet may originate from the terminal device itself or a previously registered relay device, with the latter case including an additional authentication identification for the terminal device accessing via the relay. The cloud server then checks whether the access authentication identification exists in the trusted terminal device information associated with the account identified by the association account identification. If a match is found, the cloud server returns a verification success packet to the intelligent gateway, carrying the access authentication identification. This packet instructs the gateway to permit the terminal device (or the terminal device accessing via the relay) to join the WLAN. The system ensures secure and streamlined authentication by leveraging pre-registered trusted relationships between accounts and devices, reducing the need for repeated authentication processes.
9. The method according to claim 8 , further comprises: receiving, by the cloud server, account information of the account registered on the intelligent gateway transmitted by the intelligent gateway; determining, by the cloud server, the account registered on the intelligent gateway as a trusted account so as to establish correspondence between the account information of the trusted account and the intelligent gateway.
This invention relates to cloud-based authentication systems for intelligent gateways, addressing the need for secure and automated account verification in networked environments. The method involves a cloud server receiving account information from an intelligent gateway, where the account is registered on the gateway. The cloud server then designates this account as a trusted account, creating a direct association between the account information and the intelligent gateway. This process ensures that the gateway can authenticate users or devices based on trusted credentials stored in the cloud, enhancing security and simplifying access management. The system eliminates manual verification steps, reducing administrative overhead while maintaining robust security protocols. The method is particularly useful in smart home or industrial IoT applications where multiple devices require secure, centralized authentication. By linking gateway accounts to cloud-based trust mechanisms, the invention streamlines device onboarding and access control, improving both user convenience and system integrity. The approach leverages existing cloud infrastructure to automate trust establishment, ensuring seamless and secure interactions between gateways and registered accounts.
10. A device including a processor and a non-transitory storage medium for storing machine executable instructions corresponding to functional logic of wireless access authentication, and by executing the machine executable instructions, the processor is caused to: receive an access authentication packet comprising an authentication identification indicating a terminal device which is to access a wireless local area network (WLAN) managed by an intelligent gateway wherein, the access authentication packet is from the terminal device or a relay device previously registered on the intelligent gateway and in the case that the access authentication packet is from the relay device previously registered on the intelligent gateway, a preset field in the access authentication packet comprises an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway via the relay device; construct an identity verification packet comprising an access authentication identification and an association account identification, wherein, the access authentication identification represents the authentication identification of the terminal device carried in the access authentication packet, and the association account identification indicates an account registered on the intelligent gateway; transmit the identity verification packet to a cloud server, wherein, the cloud server saves account information of one or more trusted accounts; permit a terminal device corresponding to an access authentication identification carried in a verification success packet received from the cloud server to access the WLAN, wherein the verification success packet is returned by the cloud server according to the saved account information of the one or more trusted accounts in response to receipt of the identity verification; and feed back the verification success packet to the relay device, so that the relay device permits the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN managed by the intelligent gateway via the relay device.
This invention relates to wireless network authentication systems, specifically for securely managing access to a wireless local area network (WLAN) managed by an intelligent gateway. The problem addressed is ensuring secure and efficient authentication of terminal devices, including those connecting through relay devices, while leveraging cloud-based account verification. The device includes a processor and a non-transitory storage medium storing machine-executable instructions for wireless access authentication. Upon execution, the processor receives an access authentication packet containing an authentication identification for a terminal device seeking WLAN access. The packet may originate from the terminal device itself or a previously registered relay device, which includes the terminal device's authentication identification in a preset field. The processor constructs an identity verification packet containing the terminal device's access authentication identification and an association account identification linked to an account registered on the intelligent gateway. This packet is transmitted to a cloud server, which stores account information for trusted accounts. If the cloud server verifies the identity and returns a verification success packet, the terminal device is granted WLAN access. For relay device scenarios, the verification success packet is forwarded to the relay device, which then permits the terminal device to access the WLAN via the relay. This system ensures secure, cloud-verified authentication for both direct and relayed WLAN access requests.
11. The device according to claim 10 , the machine executable instructions further cause the processor to: acquire account information of an account registered on the intelligent gateway; transmit the account information to the cloud server, so as for the cloud server to determine the account registered on the intelligent gateway as a trusted account and establish correspondence between the account information of the trusted account and the intelligent gateway.
This invention relates to a system for securely managing and authenticating accounts on an intelligent gateway device. The problem addressed is the need for a secure and automated method to register and verify user accounts on intelligent gateways, ensuring trusted access to cloud-based services. The system includes an intelligent gateway with a processor and machine-executable instructions that enable account registration and authentication. The gateway acquires account information from a user account registered on the device, then transmits this information to a cloud server. The cloud server processes the account information to designate the account as trusted and establishes a secure correspondence between the account and the intelligent gateway. This correspondence allows the cloud server to recognize the gateway as a trusted device for the registered account, enabling secure access to cloud services without repeated authentication. The system enhances security by ensuring only verified accounts can interact with the cloud server through the intelligent gateway, reducing the risk of unauthorized access. The invention improves user convenience by automating the trust establishment process while maintaining robust security protocols.
12. The device according to claim 11 , the machine executable instructions further the processor to: acquire a security code returned by the cloud server in response to receipt of the account information; the identity verification packet further comprises the security code.
A system and method for secure identity verification involves a device that communicates with a cloud server to authenticate a user. The device collects account information from the user, such as login credentials, and transmits this data to the cloud server. The cloud server processes the account information and returns a security code, which the device then acquires. The device generates an identity verification packet that includes the security code and other relevant data, such as biometric or device-specific information, to verify the user's identity. The verification packet is sent to the cloud server for final authentication. This system enhances security by ensuring that only authorized users can access sensitive services or data, preventing unauthorized access attempts. The use of a security code adds an additional layer of verification beyond traditional credentials, reducing the risk of fraud or identity theft. The device may be a smartphone, tablet, or other computing device capable of executing machine-readable instructions to perform these steps. The cloud server validates the identity verification packet and grants or denies access based on the provided security code and other verification data. This approach is particularly useful in financial transactions, secure logins, or any scenario requiring robust identity confirmation.
13. The device according to claim 10 , wherein, the machine executable instructions further cause the processor to: determine whether the access authentication packet includes a preset field; extract the content in the preset field as the authentication identification of the terminal device if the access authentication packet includes the preset field; determine a source Media Access Control (MAC) address of the access authentication packet as the authentication identification of the terminal device if the access authentication packet does not include the preset field.
This invention relates to network authentication systems, specifically methods for identifying terminal devices during access authentication. The problem addressed is the need for flexible and reliable authentication identification in network access control, where terminal devices may or may not include specific authentication fields in their packets. The system processes an access authentication packet to determine the terminal device's authentication identification. If the packet contains a preset field, the system extracts its content as the authentication identifier. If the preset field is absent, the system defaults to using the packet's source MAC address as the identifier. This dual-mode approach ensures compatibility with both legacy and modern devices, improving authentication robustness. The solution involves a processor executing machine-readable instructions to analyze the packet structure. The preset field, if present, may contain a unique identifier or token assigned to the terminal device. The MAC address serves as a fallback identifier, leveraging hardware-level addressing for devices lacking the preset field. This method enhances security by validating authentication credentials while accommodating varying device configurations. The system's adaptability reduces authentication failures and improves network access control efficiency.
14. The device according to claim 10 , wherein the intelligent gateway connects to the terminal device via one of a Wireless-Fidelity (WIFI), ZigBee or Bluetooth protocol.
Technical Summary: This invention relates to an intelligent gateway system designed to enhance connectivity and communication between terminal devices and a central network. The system addresses the challenge of integrating diverse communication protocols in smart environments, such as home automation or industrial IoT, where devices may use different wireless standards. The intelligent gateway acts as a bridge, facilitating seamless data exchange between terminal devices and a central network, ensuring compatibility and efficient data transmission. The gateway is configured to connect to terminal devices using one of several wireless protocols, including Wireless-Fidelity (Wi-Fi), ZigBee, or Bluetooth. This flexibility allows the system to support a wide range of devices, each operating on different communication standards. The gateway may also include additional features, such as data processing capabilities, security protocols, and network management functions, to optimize performance and reliability. By supporting multiple protocols, the system simplifies device integration and reduces the need for separate adapters or converters, streamlining the deployment of smart networks. The invention aims to provide a scalable and adaptable solution for modern connected environments.
15. The device according to claim 10 , wherein the terminal device connects to the intelligent gateway via a non Wi-Fi protocol.
This invention relates to a system for connecting terminal devices to an intelligent gateway using a non-Wi-Fi communication protocol. The system addresses the need for flexible and reliable connectivity options in smart home or IoT environments, where Wi-Fi may not always be the optimal or available solution. The intelligent gateway acts as a central hub, managing communication between various terminal devices such as sensors, actuators, or other smart appliances. The gateway is configured to support multiple communication protocols, including but not limited to Zigbee, Z-Wave, Bluetooth, or cellular networks, allowing devices to connect even in areas with weak or no Wi-Fi coverage. The terminal devices are equipped with compatible transceivers to establish direct or indirect connections with the gateway, ensuring seamless data exchange. The system may also include features like protocol translation, signal amplification, or mesh networking to enhance reliability and coverage. By leveraging non-Wi-Fi protocols, the system provides a robust alternative for device connectivity in diverse environments, improving overall system performance and user experience.
16. The device according to claim 10 , wherein the relay device has previously registered on the intelligent gateway as part of an account registration.
A device for network communication includes a relay device that facilitates data transmission between a first device and a second device. The relay device operates within a network system that includes an intelligent gateway, which manages communication and security protocols. The relay device is configured to establish a secure connection with the intelligent gateway, ensuring authenticated and encrypted data exchange. The relay device has previously registered with the intelligent gateway as part of an account registration process, which involves verifying the device's identity and credentials before allowing it to participate in the network. This registration ensures that only authorized devices can communicate through the gateway, enhancing network security. The relay device may also include additional features such as data routing, protocol translation, or load balancing to optimize network performance. The system is designed to address challenges in secure and efficient data transmission in networked environments, particularly where multiple devices need to communicate through a centralized gateway. The registration process ensures that all devices meet security standards before integration, reducing the risk of unauthorized access or data breaches.
17. A device including a processor and a non-transitory storage medium for storing machine executable instructions corresponding to functional logic of wireless access authentication, and by executing the machine executable instructions, the processor is caused to: receive an identity verification packet transmitted by an intelligent gateway, wherein, the identity verification packet comprises an access authentication identification and an association account identification, the access authentication identification represents an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway, and the association account identification indicates an account registered on the intelligent gateway, wherein the identify verification packet is from the terminal device or a relay device previously registered on the intelligent gateway and wherein, in the case that the access authentication packet is from the relay device previously registered on the intelligent gateway, a preset field in the access authentication packet comprises an authentication identification indicating a terminal device which is to access the WLAN managed by the intelligent gateway via the relay device; determine whether the access authentication identification exists in trusted terminal device information of a pre-saved trusted account according to the association account identification; and return a verification success packet carried with the access authentication identification to the intelligent gateway if the access authentication identification exists in the trusted terminal device information, wherein the verification success packet indicates to the intelligent gateway to permit the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN and the verification success packet indicates to the relay device to permit the terminal device corresponding to the access authentication identification carried in the verification success packet to access the WLAN managed by the intelligent gateway via the relay device.
This invention relates to wireless network access authentication, specifically for managing secure access to a wireless local area network (WLAN) via an intelligent gateway. The problem addressed is ensuring that only trusted terminal devices can access the WLAN, either directly or through a previously registered relay device, while maintaining secure authentication processes. The device includes a processor and a non-transitory storage medium storing machine-executable instructions for wireless access authentication. When executed, the processor receives an identity verification packet from either a terminal device or a relay device registered with the intelligent gateway. The packet contains an access authentication identification (indicating the terminal device seeking access) and an association account identification (indicating an account registered on the gateway). If the packet originates from a relay device, a preset field in the packet includes the authentication identification of the terminal device attempting access via the relay. The processor then checks whether the access authentication identification exists in the trusted terminal device information associated with the account identified by the association account identification. If the identification is found in the trusted list, the processor returns a verification success packet to the intelligent gateway, carrying the access authentication identification. This packet instructs the gateway to permit the terminal device to access the WLAN directly or via the relay device, ensuring secure and controlled network access.
18. The device according to claim 17 , the machine executable instructions further cause the processor to: receive account information of the account registered on the intelligent gateway transmitted by the intelligent gateway; determine the account registered on the intelligent gateway as a trusted account so as to establish correspondence between the account information of the trusted account and the intelligent gateway.
This invention relates to a system for managing trusted accounts in a networked environment, particularly involving an intelligent gateway device. The problem addressed is the need for secure and automated verification of accounts registered on such gateways to establish trust relationships within a network. The system includes an intelligent gateway that communicates with a central processing unit executing machine-readable instructions. The instructions enable the processor to receive account information from the intelligent gateway, where the account is registered on the gateway. The processor then designates this account as a trusted account, creating a correspondence between the account information and the gateway. This establishes a trusted relationship, allowing the account to interact securely with other networked devices or services through the gateway. The intelligent gateway acts as an intermediary, facilitating communication between the trusted account and other network components. The system ensures that only verified accounts are granted access, enhancing security and streamlining authentication processes. The correspondence between the account and the gateway enables efficient management of trusted entities within the network, reducing the need for manual verification and minimizing potential security risks. This approach is particularly useful in environments where multiple devices or users need secure access to shared resources.
Unknown
August 27, 2019
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.